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Abstract 

In this paper we relate different formulations of the DPLL(T) procedure. 
The first formulation is that of |NOT06j based on a system of rewrite rules, which we 
denote DPLL(T). 

The second formulation is an inference system of |Tin02) , which we denote LKdpll(T). 

The third formulation is the application of a standard proof-search mechanism in a sequent 
calculus LK P (T) introduced here. 

We formalise an encoding from DPLL(T) to LKdpll(T) that was, to our knowledge, never 
explicitly given and, in the case where DPLL(T) is extended with backjumping and Lemma 
learning, never even implicitly given. 

We also formalise an encoding from LKdpll(T) to LK P (T), building on Ivan Gazeau's 
previous work: we extend his work in that we handle the "-modulo- Theory" aspect of SAT- 
modulo-theory, by extending the sequent calculus to allow calls to a theory solver (seen as a 
blackbox). We also extend his work in that we handle advanced features of DPLL such as 
backjumping and Lemma learning, etc. 

Finally, we refine the approach by starting to formalise quantitative aspects of the simula- 
tions: the complexity is preserved (nunber of steps to build complete proofs). Other aspects 
remain to be formalised (non-determinism of the search / width of search space). 
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1 Encoding DPLL(T) in LK DPL l(T) 



In this section we encode DPLL(T) in LKdpll(T). 

Note that there exist different variants of DPLL(T). We first consider the basic version 
which is equipped with backtracking. This formalises ideas presented in |Tin02| . 

Then we enhance the encoding to the enhanced version of DPLL(T) with backjumping, a 
generalised version of backtracking. 

The main gap between DPLL(T) and an inference system such as LKdpll(T) is the fact 
that a (successful) DPLL(T) run is a rewrite sequence finishing with the state UNSAT, while 
a (successful) proof-search run is (/ produces) a proof tree. Roughly speaking, the DPLL(T) 
procedure implements the depth-first search of the corresponding tree. 



1.1 Preliminaries: LKqpll(T) and its properties 

Definition 1 (The system LKdpll(T)) Clauses are finite disjunctions of literals considered 
up to commutativity and associativity. We will denote them C, Co, C\ etc; the empty clause 
will be denoted by _!_. The cardinality of a clause C is denoted |C|. 

Finite sets of clauses, e.g. {C\, . . . , C n }, will be denoted 4>, <f)o, etc. By \<fi\ we denote the 
sum of the sizes of the clauses in By lit(<j!>) we denote the set of literals that appear in <f) or 
whose negations appear in <f>. 

Given a theory T the system LKdpll(T), given in Figure [T] is an inference system on 
sequents of the form A;<f> \—y , where A is a set of literals (e.g. {h, . . . , l n })- 



Split where I G lit(0), A, I 1 - ¥ r and A, I ¥ T 



A-6 h 



T 



A, h r 



a / I I Empty Assert where A j± ^ and A ^ l p 

A;0,i-hr A;0,Zh r 

A;0h r A;0,C7h r 

Subsume where A, I \=j- Resolve where A, I \=j- 



A;0,/VCr- r A;<i>,lVC\- T 



Figure 1: System LK D pll(T) 

The Assert rule models the fact that every literal occurring as a unit clause in the current 
clause set must be satisfied for the whole clause set to be satisfied. The Split is mainly used 
to branch the proof tree from the DPLL rewrite sequence system. This rule corresponds to the 
decomposition in smaller subproblems of the DPLL method. This rule is the only don't know 
non — deterministic rule of the calculus. The Resolve rule removes from a clause all literals 
whose complement has been asserted (which corresponds to generating the simplified clause 
by unit resolution and the discarding the clause by backword subsumption). The Subsume 
rule removes from the clauses that contain an asserted literal( because all of these clause will 
be satisfied in any model in which the asserted literal is true). To close the branch of a proof 
tree we use the empty rule is in the calculus just for convenience and could be removed with 
no loss of completeness. It models the fact that a derivation can be terminated as soon as the 
empty clause is derived. We do not consider that the model is consistent and satisfiable. 

Definition 2 (Semantical entailment) A \=j- C is a semantical notion of entailment for 
a particular theory T, i.e. every T-model of A is a T-model of C. A theory lemma is a clause 
C such that \= T C. 

Lemma 1 (Weakening 1) The following rule is size-preserving admissible in LKdpll(T) 

A;0 h r 



Proof: By induction on A;cf> hr ■ □ 
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Definition 3 (Consequences) For every set A of literals Z, let Sat(A) = {l\A |=r 1} and 
Sat^(A) = Sat(A) n lit(0). 

Remark 2 If Sat(A) = Sat(A') then A \= T I iff A' \= T I 

Lemma 3 (Weakening 2) The following rule is size-preserving admissible in LK DPLL (T) 

A;0h r 

Sar (A) C Sat* (A') 

A';4> h r 

Proof: By induction on the derivation of A;<f> hr : 

A-4>,Ch T 

Resolve A, I |=r 

A;4>, I V C h r 

We assume Sat^ i ; v c(A) C Sat0,; v c(A') 

from which we get Sat*,c(A) C Sat < ^, j c(A'), so we can apply the induction hypothesis 
to construct 

A';0,Ch r 

— hr 

A';4>,lV C \- T 

The side-condition is a consequence of the assumption Sat0 jiv c(A) C Sat^j v c(A'). 
A;4> hr 

Subsume A, I hr 

A;4>,1\/ C \- T 



We assume Sat0,; v c(A) C Sat0,; v c(A') 
from which we get Sat^(A) C Sat^,(A'), so we 



can apply the induction hypothesis to 

construct 

A';0h r 
A ,1 hr 

The side-condition is a consequence of the assumption Sat^ i;v c(A) C Sat^j v c(A'). 

A, l;<j>, I h r 

Assert A, Z x ¥ T and A, I ¥ T 

A-4>,1 h r 

We assume Sat^ >i! (A) C Sat^, i ;(A') 

from which we get Sat^(A, I) C Sat*,i(A', I). 

— If A' h^r I, then Sat(A',/) = Sat(A'), so we have Sat*,i(A,Z) C Sat , ; (A'). The 
induction hypothesis then gives A';4>,1 hr • 

— If A' hr Z x , then we construct 

Empty 

A';<t>,± h r 

Resolve 

A'-<t>,l h r 

— If A' hr I and A' hr I ■ we first apply the induction hypothesis to get A', l;<j>, I hr 
and we conclude by constructing 

A',l-<p,l h r 



A',Z X ¥ T and A',ZK r 

iA ;<p,i r r 
>,Z VC h r 

A / 

A;cj), I V C hr 



A';<M ^r 

A, Z x ;0, Z V C hr A,Z;0,ZvCh r 
SpZ« A, I 1 - ¥ T and A, Z K r 



A;0, IVC'hr 

We assume Sat < / )j i V c(A) C Sat < / >j i V c(A / ) from which we get both 
Sat , ; vc(A,Z) C Sat 0jivC (A',Z) and Sat 0jivC (A, Z x ) C Sat <# ,, ;vC (A', Z x ). 

- If A' hr Z, then Sat(A') = Sat(A',Z), so we have Sat 0i i VC (A, Z) C Sat Wv c(A'). 
The induction hypothesis then gives A';4>,1 V C hr • 

- If A' hr Z x ,thenSat(A') = Sat(A',Z x ), so we have Sat 0ii vc(A, Z x ) C Sat Wv c(A'). 
The induction hypothesis then gives A';4>, I V C hr • 
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— If A' I and A' Y=T ' ±: the induction hypothesis on both premises gives 

A', l;<f>, I V C \~r and A', l^;4>, I V C hr , and we can conclude 



' VChr A', h<j> IVC \~t 

A' ^ r I and A' ^ r i J 



Empty Straightforward. 

□ 

Lemma 4 (Invertibility of Resolve) Resolve is size-preserving invertible in LKdpll(T)- 

Proof: By induction on the derivation of A;<f>, C\/l hr we prove A;0,C hr (with the 
assumption A, I \=t)'- 

Resolve easily permutes with other instances of Resolve and with instances of Subsume. 

Assert The side- condition of the rule guarantees that the literal added to the model, say I' , is 
different from I: 



A,l';<j)',l',CVl\-T 
A;^',I',CVI h r 

We can construct 



A, I' M T and A, I' >V 



r A,/' X >V and A ; I' f- r 



whose premiss is proved by the induction hypothesis. 

Aj^;4>,C\ll hr A, «';<?!>, C vZ h r 

S^ii {' e KtU, C V Z) and A, Z' x M r and A, J' M r 

A;0,CVZ h r 
We can construct 

A, Ch r A.Z'^Chr , . 

I' G \\t(<j>, C) and A, Z' x ¥ r and A, Z' K r 

A;0,Ch r 

whose branches are closed by using the induction hypothesis. The side-condition I' £ 
lit(0, C) is satisfied because I ^ I' . 

Empty Straightforward. 

□ 

We now introduce a new system LK DPLL +(T) which is an extended version of LKdpll(T) 
with Weakeningl, Weakening 1 ! and the Inverted Resolve. By the previous lemmas, a sequent 
derivable in LK DPLL +(T) is derivable in LKdpll(T). 



A;0h r A^hr c ^ c / \ t\ A;0,/VChr „ 

7 7 7,7 - - - 7 - Sat A c Sat A' ------- A, Z H" 

A;^,Ch r A';0h r A;0,Ch r 



Figure 2: System LK DPLL + (T) 

Definition 4 (Size of proof-trees in LK DPLL +(T)) The size of proof-trees in LK DPLL +(T) 

is defined as the size of trees in the usual sense, but not counting the occurences of Weakeningl, 
Weakening^ or the Inverted Resolve rulesQ 

Remark 5 The size-preserving admissibility results of those three rules in LKdpll(T) entails 
that a proof-tree in LK DPLL +(T) of size n, can be transformed into a proof-tree in LKdpll(T) 
of size at most n. 

Lemma 6 If A \=j- —>C then there is a proof-tree concluding A;C, (f> hr of size at most 
101 + 1- 



x For that reason, dashed lines will be used for the occurences of those inference rules. 
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Proof: Here A \=q — <C means C = li V . . . W n and for all k, VZj A \=j- where i=l,. . . ,n. 
We can therefore construct 

Empty 

A;±,0h r 

= Resolve 
A;C,0h r 

□ 

1.2 DPLL(T) with backtracking 

In this section we describe the basic DPLL(T) procedure |NOT06j . and its encoding into 
LKdpll(T). 

Definition 5 (Basic DPLL(T)) Models are defined by the following grammar: 

A::= ()|A,Z d |A,Z 

where I ranges over literals, and I is an annotated literal called decision literal. 

The basic DPLL(T) procedure rewrites states of the form A\\<f>, with the following rewriting 
rules: 

• Fail: 

A||0, C =>■ UNSAT, with |A| |= ->C and there is no decision literal in A. 

• Decide: 

A||0 A,l d \\4> where I A, l x <£ A, / £ <j> or l x <£ <f>. 

• Backtrack: 

Ai,Z d , A 2 \\(p, C Ai,« ± ||0,C if |Ai,Z,A 2 | |= -if? and no decision literal is in A 2 . 

• Unit propagation: 

A||<^, C*V!=> A,l\\4>, C V I where | A| |= -,C, I A, Z x A. 

• Theory Propagate: 

A A, where |A| |= r J, I € lit(0) and !0A/ ^A. 

where |A| denotes the result of erasing the annotations on decision literals, an operation 
defined in Figure [3] 



101 


:= 


|A,Z| 


:= \A\,l 


|A,/ d | 


■= 1AM 



Figure 3: Erasing annotations 



We now proceed with the encoding of the basic DPLL(T) procedure as the construction 
of a derivation tree in System LKdpll(T). The simulation could be be stated as follows: 

If A\\(j> UNSAT then there is a LKdpll(T) proof of \A\;cf> hj- (i.e. there is no T-model 
of <f) extending A). 

This is true; however, there is more information in A\\<j> UNSAT than in \A\;cf> hr , 
because the DPLL(7^ sequence leading to UNSAT also backtracks on decision literals. This 
means that not only there is no T- model of cf> extending |A|, but no matter how decision 
literals of A are changed, there is still no T- model of (f> that can be constructed. This notion 
is formalised by collecting the backtrack models as follows: 

Definition 6 (Backtrack models) In Fig. 3] we define the interpretation of a model as a 
collection (formally, a multiset) of sets of literals. 

Remark 7 We have A| € [A] and [A] C [A]. 

We consider a notion of a partial proof-tree to step-by-step simulate DPLL(T) runs. 
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[()] 


:= 


[A,/] 


:= IAJ 




:= [A, l x ] 


[A] 


■= IA]U||A|J 



Figure 4: Collecting backtrack points 



Definition 7 (Partial proof-tree) A partial proof-tree in LK DPLL + (T) is a tree labelled 
with sequents, whose leaves are tagged as either open or closed, and such that every node 
that is not an open leaf is an instance of the LK DPLL + (T) rulesQ 

A complete proof-tree is a partial proof-tree whose leaves are all closed. 

A partial proof-tree it' is an n-extension of 7r if tt' is n or if tt' is obtained from n by 
replacing one of its open leaves by a partial proof-tree of size at most n and whose conclusion 
has the same label as that leaf. 

Definition 8 (Correspondence between DPLL(T) states and partial proof-trees) A 

partial proof-tree -k corresponds to a DPLL(T) state A\\<p if the sequents labelling its open 
leaves form a sub-set of {A';4> br | A' £ [A]}. 

A partial proof-tree n corresponds to UNSAT if it has no open leaf. 

The DPLL(T) procedure starts from an initial state i.e. 0||0, to which corresponds the 
partial proof-tree consisting of one node (both a root and a leaf) labelled with the sequent 
\<t> ■ 

Note that, different partial proof-trees might correspond to the same DPLL(T) state, 
as different DPLL(T) runs can lead to that state from various initial DPLL(T) states. The 
simulation theorem below expresses the fact that, when DPLL(T) rewrites one state to another 
state, any partial proof-tree corresponding to the formal state can be extended into a partial 
proof-tree corresponding to the latter state. 

Theorem 8 If A\\(f> S2 «s a rewrite step of DPLL(T) and if ~k\ corresponds to A\\<f> then 
there is, in LK DPLL + (T), a \<j>\ + 1-extension 1x2 of tti corresponding to <5>2. 

Proof: By case analysis: 

• Fail: A\\(f>, C =>* UNSAT with JA| |= and there is no decision literal in A. 
Let 7ri be a partial proof-tree corresponding to A||0,C. Since there are no decision 
literals in A, m can have at most one open leaf, labelled by \A\;<j>,C br . 

We |0, C| + l-extend tvi into 7T2 by replacing that leaf by a complete tree deriving A\;cj), C br ■ 
We obtain that tree by applying Lemma|S|on the hypothesis |A| |= —-C. The new tree 
7T2 is complete and therefore corresponds to the UNSAT state of the DPLL(T) run. 

• Decide: A|j0 A, Z d |[0 where I £ A, I 1 - A, / £ <f> or I 1 - e 4>. 

Let 7Ti be a partial proof-tree corresponding to A\\(f>. We 1-extend it into 7T2 by replacing 
the open leaf labelled with \A\;cj> \~r (if there is such a leaf) by one of three proof-trees: 

- If |A|,Z \= T , we have Sat(|A|) = Sat(|A|,Z x ) and we take: 

\A\,l x ;4> br 

— Weakening2 

|A|;0 b r 

The new open leaves form a sub-set of {|A|, l x ;(j> b r } U {A 1 ;(f> b r | A' £ [A]} C 
{A';<p b r I A' G [A,/ d ]} (since lAI,^ = |A,Z ± | e [A,Z ± ] = [A,Z d J C [A,l d ]) and 
therefore TT2 corresponds to A,l d \\(f>. 

- If |A|,Z X (=r, we have Sat(|A|) = Sat(|A|,/) and we take 

\A\,l;4> b r 

Weakening2 

\A\;<j> b r 

2 A partial proof-tree that has no open leaf is isomorphic to a derivation in LK DPLL + (T). 
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The new open leaves form a sub-iset of {|A|,Z;0 hr } U {A';<p h r A' 6 [A]} C 
{A';0 hr | A' G [A,Z d ]} (since [A|,Z = |A,Z| G [A,Z d ]) and therefore ir 2 corres- 
ponds to A,l d \\<j>. 
~ If |A|,Z ^ r and |A|,Z X we take 

\A\,l;<p\- T [A|,Z x ^h r 
Split 

|A|;0 h r 

The new open leaves form a sub-set of {|A|,Z;0 hr }U{|A|, Z x ;</(> h r }U{A';</> h r | 
A' G [A]} C {A';4> h r | A' G [A,l d ]} and therefore ir 2 corresponds to A,l d \\(j>. 
(since |A|,Z X = |A,Z X | G [A,Z X ] = [A, Z d J C [A,Z d ]) 

• Backtrack: Ai, Z d , A 2 ||0, C => Ai, Z x \\</>, C 

if |Ai,Z, Aa| |= -| C and no decision literal is in A2. 

Let 7Ti be a partial proof-tree corresponding to Ai, l d , A2 1|</>, C. Since there are no de- 
cision literal in A2, iri can have at most one open leaf, labelled with |Ai, l d , A 2 |;<£, C h r • 
We \4>, C|+l-extend 7Ti into tv 2 by replacing that leaf by a complete tree deriving | Ai , l d , A2 1 \<j>, C hr • 
We obtain that partial proof-tree by applying lemma[6]on the assumption |Ai, l d , A 2 | |= 
-.C. 

The new open leaves form a sub-set of {|A|i, Z x ;0,C h r }U{A';</> h r | A' G [Ai, l d , A 2 J} = 
{A';^ h r I A' G [Ai,Z d ]} C {A';0 h r | A' G [A 1 ,Z ± ]} (since |A X |, Z" 1 " = |A l5 Z x G 
[Ai,Z x ]) and therefore 7T2 corresponds to Ai,Z x ||<^, C state of the DPLL(T) run. 

• Unit propagation : A\\<j>, C V I => A, Z||0, C V Z where |A| |= -.C, Z A, Z x £ A. 
Let 7Ti be a partial proof-tree corresponding to A\\(j>,C V Z. We \<f>,C V Z|+l-extend it 
into 7T2 by replacing the open leaf labelled with |A|;</>, C V I hr (if there is such a leaf) 
by one of three proof-trees: 

— If |A|,Z X |= r , we have Sat(|A|) = Sat(|A|,Z) and we take: 

\A\,l;4> h r 

Weakening2 

|A|;0 h r 

The new open leaves form a sub-set of {[A|, l;<j>, C V I h r }U{A';0, C V Z h r | A' G 
[A]} C {A' ;(? !>,C*VZ h r A' € [A,Z]} (since |A|,Z = |A,Z| G [A,Z]) and therefore 
7T2 corresponds to A, l\\tj>, C V I. 

— If |A|, I \=t then lemma Indirectly provides a partial proof-tree of A|;0, C V Z hr • 

— If |A|,Z y^r and |A|,Z ^7-, we can construct the following tree: 

|A|, l;<j>, C V Z h T 

= = = = = = = = Inverted Resolve 

AM;<M h r 

Assert 

[A[;^Z h r 
===== Resolve 
\A\;4>,CVl h r 

where the side-conditions of Resolve are provided by the hypothesis A" |= -i(7. 
The new open leaves form a sub-set of {|A|, l;<j>, C V Z hr } U {A';<^ hr | A' G 
[A]} C {A';<f> h r I A' G [A, I]} and therefore 7r 2 corresponds to A, l\\<f>, C V I. 
(since |A[, Z = |A, Z| G [A, I]) 

• Theory Propagate: A||<^ => A, Z||0 where | A| \=t I, I 6 lit (0) and Z A, Z x £ A. 

Let 7Ti be a partial proof-tree corresponding to A||0. We 1-extend it into n 2 by replacing 
the open leaf labelled with \A\;<j> hr by the following proof-tree : 

\A\,l;<t> h r 

Weakening2 

|A|;0 h r 

The new open leaves form a sub-set of {\A\,l;4> h r } U {A' ' ;cj> h r | A' G [A]} C 
{A';(j> h r j A' G [A, Z]} (since |A[,Z = |A, Z| C [A, I)) and therefore n 2 corresponds to 
A,IU- 

□ 
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Corollary 9 LKdpll(T) is complete, i.e. if cj> \=f then ;<f) hr 
Proof: By completeness of basic DPLL(T) and Theorem[8] 



□ 



1.3 DPLL(T) with backjumping and Lemma learning 

We now consider a more advanced version of DPLL(T), which involves backjumping and 
lemma learning features, and which we denote DPLL;,j (T). DPLLjj (T) extends basic DPLL(T) 
with the rules known as T-Backjump, T- Learn, T- Forget, and Restart |NOT06| . Those rules 
drastically increase the efficiency of SMT-solvers. 

T-Backjump: Ai , l d , A 2 \\<f>, C => Ai,l bj \\(j),C with 

1. |A x J d ,A 2 | (=-*?. 

2. | Ax | \=^C 

3. <t>, C^tC'v l bj 

4. l bj <£ Ai, lfc Ai and l bj e \\t(<j>, A x , l d , A 2 ). 

for some clause C' such that lit(C') C \\t{4>,C). 
T-Learn: A||0 A\\cj>, C if lit(C) C Y\t{4>, A) and cj> \= T C. 
T-Forget: A\\<f>, C =► A\\<f> if <f> \= T C. 
Restart: A\\<j> => 0||0. 

In order to simulate those extra rules in LKqpll(T), we need to extend LKdpll(T) with a 
cut rule as follows: 



Definition 9 (LKdpll(T) with cut) System LKd PLL (T) is obtained by extending system 
LK 

dpll+ (T) with the following cut-rule: 

A;cf>, h,..., l n h r A;0,C*h r 

Cut where C = l\ , . . . , l„ 

A;<t> h r 

We define the size of proof-trees in LK DPLL (T) as we did for LK DPLL + (T) (ignoring Weaken- 
ingl, Weakening2 or the Inverted Resolve), but also ignoring the left-branch of the cut-rules[f| 

Definition 10 (n, (f>, 5-sync action) is a n, <f>, <S-sync action if it is a function that maps 
every model A £ S to a partial proof-tree of size at most n and concluding A;<f) hr . 

Definition 11 (Parallel n-extension of partial proof-trees) 7T2 is & parallel n-extension 
of 7Ti according to if is a n, <j>, <S-sync action and if 1x2 is obtained from m by replacing 
all the open leaves of 7ri labelled by sequents of the form A;(f> hr (where A £ S) by 7r</,(A). 

Theorem 10 If A\\(f) =^£)p/_/_ 6 (T) < "' 2 an ^ corresponds to A\\<f>, there is parallel \(f>\ + 3- 
extension 7T2 of 7i~i ( according to some ) such that TY2 corresponds to S2 ■ 

Proof: Since LKdpll(T) is a sub-system of LK DPLL (T), we only need to simulate (in 
LK DPLL (T)) the new rules. 



T-Backjump: Ai , l d , A 2 \\<j>, C Ai,l bj \\cf>,C with 

1. \A u l d ,A 2 \ (=-,(?. 

2. I Aj| |= -,C" 

3. 0, C* C V l b] 

4. l bj Ax, l bj Ai and l bj 6 lit(0, A x , l d , A 2 ). 

3 As we shall see in the simulation theorem, this definition mimicks the fact that the length of DPLL(T) sequences 
is a complexity measure that ignores the cost of checking the side-conditions. 



8 



Let 7Ti be a partial proof-tree corresponding to Ai, l d , A2 C. We have to build a 1x2 
that corresponds to Ai, Zi,j||<?i, C in the DPLLbj(T) run. This means that the open leaves 
of 7T2 should be labelled with sequents of the form A';<f),C hr where A' G [Ai,Zy] . 
Let S = [Ai, l d , A2]\[Ai] and 7T0 be the |0,C|+3, 4>, C,<S-sync action that maps every 
A G S to 

Ai I, lbj;4>,C h r 

Subsume 

I Ai|, Z(,j;0, C", i b j h r 

Assert 

;<(>, C,->C',l b j hr |Ai|;^,C,Z(, 3 - hr 

— Weakening2 ========= Resolve 

lAil^G,-^,^ h T |Ai|tf,<7,CvZ M h r 

cut 

|Ai|;0,Ch r 

Weakening"! 

It is a valid partial proof-tree because A £ <S entails |Ai| C A and therefore Sat^ (| Ai |) C 
Sat^(A). The left branch is closed by assumption (3) and the completeness of LKdpll(T) 
on cf>, G, —iC, |=r (Corollary [9]). We cannot anticipate the size of the proof-tree clos- 
ing that branch, and we therefore ignore that proof-tree to compute the size of the whole 
tree, just as the length of the DPLL(T) run ignores the cost of checking cf>, C \=t & \hj- 

Let 7T2 be the parallel \<j>, C|+3-extension of 7Ti according to -n^. The new open leaves form 
a sub-set of {|Ai|,l w tf,C h r } U {A';0 h r | A' G [Ai]} C {A';0 h r | A' G [A X ,J M ]} 
(since |Ai|,Zf,j = Ai , Zf,^ | G [Ai, Zbj] and [Ai,Z&j] = [Ai] ) and therefore -K2 corresponds 
to Ai,l bj \\4>,C. 

T-Learn: A||0 => A\\cj>, C if each atom of C occurs in cj> or in A and ^ |=r C. 

Let 7ri be a partial proof-tree corresponding to A\\<f>. We have to build a 712 that 
corresponds to A\\<f>, C in the DPLL(,j (T) run. This means that the open leaves of 112 
should be labelled with sequents of the form A';<f>, C hr where A' G [A] . 
Let S — [A] and 7T0 be the \(j>\,(j),S -sync actionthat maps every A G S to: 

;<f>, ->C h r 

— Weakening! 

A;<^Ch r |A|;^Ch T 

cut 

A;0 h r 

The left branch of the cut is closed by assumption and completeness of LKdpll(T) on 
4>,^C \=t (Corollary [9]). We cannot anticipate the size of the proof-tree closing that 
branch, and we therefore ignore that proof-tree to compute the size of the whole tree, 
just as the length of the DPLL(T) run ignores the cost of checking cj> \=r C. 

Let 7T2 be the parallel |0|-extension of 7Ti according to ir^. The new open leaves form a 
sub-set of {A' ;<j>, C hr | A' G [A]} and therefore 112 corresponds to A||<j!>, C. . 
T-Forget: A\\(f>, C => A\\<f> if <f> \= T C. 

Let 7Ti be a partial proof-tree corresponding to A\\<j>,C. We have to build a 7T2 that 
corresponds to A\\(f> in the DPLL(, 3 (T) run. This means that the open leaves of 7T2 
should be labelled with sequents of the form A';cp hr where A' G [A] . 
Let S = [A] and n<p be the 1, <j>, C,<S-sync action that maps every A' G S to 

A';cf> h r 

Weakeningl 

A'^Chr 

Let 7T2 be the parallel 1-extension of 7Ti according to n<t,. The new open leaves form a 
sub-set of {A';0 hr | A' G [A]} and therefore 7T2 corresponds to A\\(j>. 
Restart: A\\(p => <D\\<f>. 

Let 7ri be a partial proof-tree corresponding to A\\<f). We have to build a TT2 that 
corresponds to 0||0 in the DPLL^ (T) run. This means that the open leaves of 112 should 
be labelled with sequents of the form ;<f) hr 
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Let S — [A] and ir^ be the 1, 0,<S-sync action that maps every A' £ S to: 

— Weakening2 

Let 7T2 be the parallel 1-extension of 7Ti according to n^,. The new open leaves form a 
sub-set of {;4> hr } and therefore -ki corresponds to 0||0. 

□ 
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2 Encoding LK DPL l(T) in LK P (T) 



2.1 Preliminaries: System LK P (T) 

In this section we introduce (the propositional fragment of) system LK P (T). 

Definition 12 (Formulae, negation) The formulae of LK P (T) are given by the following 
grammar: 

Formulae A,B,... ::= I \ AA + B | A\/ + B \ Ah' B \ AV~B 

where I ranges over literals. 

Let V be a set of literals declared to be positive, while their negations, required to not 
be in V, are declared to be negative. Given such a set V, we define positive formulae and 
negative formulae as the formulae generated by the following grammars: 
positive formulae P, . . . ::= p | AA + B | A\/ + B 
negative formulae N, . . . ::= p x | AA~ B \ Av~ B 

where p ranges over V. 

Negation is recursively extended into a involutive map from formulae to formulae as follows: 



{AA+B)"- := A ± V~B 1 - 
(AV+B) 1 - := A ± A-B ± 


(AA~ 


~B) 


:= A^V+B 1 - 


(Av~ 


Bf 


:= A ± A + B ± 



Definition 13 (System LK P (T)) The sequent calculus LK P (T) has two kinds of sequents: 
r \- T [P] where P is in the focus of the sequent 

r h r r' 

Its rules are given in Figure [5] 

T(A) is the call to the decision procedure on the conjunction of all atomic formulae within 
A. It holds if the procedure returns UNSAT. 

V 



r hf [A] r hf [B] r hf [A 



r h£ [Aa+b] r h£ [a 1 \j+a 2 ] 
rtr.p 1 ) 

I> Y- V r p [p] r ^ [ P ] 

r h£ n 

— N negative 

r h£ [N] 



— — — A positive or atom 

r h£ AA~B, A r AiV-A 2 , A r h£ A, A 

rh^ 1 r,p x h£[p] T(r) 

7hT Ppositive 

Figure 5: System LKP(T) 
We also consider two cut-rules. The analytic cut: 

r,/K£ r,z x i-£ 



with the condition that I appears in T. 
The general cut: 
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r, Zi, . . . , in 



r,(/i x v" 



-l^) h r 



r h r 



2.2 Simulation 

We now encode LK DPL l(T) in LK P (T). 

The main gap between LKdpll(T) (or even DPLL(T)) and a sequent calculus such as 
LK P (T) is the fact that the structures handled by the former are very flexible (e.g. clauses are 
multisets of literals) , while sequent calculus implements a root-first decomposition of formulae 
trees. 

Clauses in DPLL(T) (and in LK DPL l(T)) are disjunctions considered modulo associativity 
and commutativity. The way we encode them as formulae of sequent calculus is as follows: a 
clause C will be represented by a formula C' which is a disjunctive tree whose leaves contain 
at least all the literals of C but also other literals that we can consider as garbage. 

Of course, one could fear that the presence of garbage parts within C' degrades the ef- 
ficiency of proof-search when simulating DPLL(T). This garbage comes from the original 
clauses at the start of the DPLL(T) rewriting sequence, which might have been simplified 
in later steps of DPLL(T) but which remain unchanged in sequent calculus. The size of the 
garbage is therefore smaller than the size of the original problem. We ensure that the inspec- 
tion, by the proof-search process, of the garbage in C" , takes no more inference steps than 
the size of the garbage itself (the waste of time is linear in the size of the garbage). In order 
to ensure this, we use polarities and the focusing properties of LK P (T): the garbage literals 
in C' must be negative atoms that are negated in the model/context. 

Definition 14 (P-correspondence) Let V be a multiset of literals. 

• A formula C' P-corresponds to a clause C (in system LKdpll(T)), where C = h V. . . V/ p , 
if C" = ZiV" ...V~l' p , with {/,[; C {/;}, ..... and for any/ € |/'| {/ |, i... p , 
I 1 6 P . 

• A LK P (T) sequent A, C"i, . . . , C' m l~r corresponds to a LKdpll (T) sequent A;Ci, C m l~r 
if C'i P-corresponds to C\ and for all I € V, A \=j- I. 

Lemma 11 If C' V -corresponds to C, then C' also (V, I) -corresponds to C. 

Proof: Straightforward. □ 

Si 

Theorem 12 Assume — is a rule of LKdpll (T). For every L^CfT) sequent S that corres- 
S 

ponds to S, there exist a partial proof-tree in LKP (T) 

• whose open leaves (5,') are such that Vi, <S t ' corresponds to Si and 

• whose size is smaller than size (S') + 4. 

Proof: By case analysis: 

• Split: 

A,/ ± ;0h r A,Z;0h r 



where I £ Wt(4>), A, I 1 - >V and A, / F T 



A;0 h r 

Assume that A, <f>' hj- corresponds to A;4> hr (i.e. <f> = C[ , . . . , C' n and <f> = C'i, . . . , C„ 
with C'i P-corresponding to C\ for i = 1 . . . n). 

We build in LK P (T) the following derivation that uses an analytic cut: 
A,; x ,0'h r ° A,Z,^'h r ° 



A, <!>' h r ° 



and A,l^,<j)' h r ° P-corresponds to A,i x ;0l-r and A,l,<j}' h r '° P-corresponds to 
A,Z;0h r . 
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Assert: 

A,i;<M h r 



A,? ± K r and A,l^ T 



A-<j>,l h r 

Assume that A,<fi',C' \- v corresponds to A;4>,1 hr ■ (i.e. 0' = CJ, . . . ,C' n and = 
Ci, . . . , C„ with C t ' P-corresponding to Cj for i = 1 . . . n, and C" P-corresponds to I, 
that is to say C = V P =1 Z; where Z = Z; for some io £ 1 . . . n) 
We build in LK P the following derivation: 



li ,A,(j> ,C h r 



TM,C,U) . A,<j>',C' hp 1 * US 

A,0',C" h^* [1+] A,<t>',C K \ 

: A+. 

A,cj>',C ^r' h ° P' X ] 
Aj^g l-r' i0 
A^'.C h r 

For i / io, if € Ao, so it is positive and we can use an axiom (remember that A |= if). 
Emptyr: 



A;0,_L h r 

Assume that A, 0', C" h 73 corresponds to A;<fi, _L I-7- (i.e. C" P-corresponds to _L, 
C(, . . . , C' n and <fi = Ci, . . . , C„ with Cj, "P-corresponding to Ci for i = 1 . . . n). 
We build in LK P the following derivation: 

A,<j>',C h r ° [If-] 



A,c/>',C h r ''*° [C" J 



A,0',C h r 



Again, Zj £ A , so it is positive and we can use an axiom (remember that A |= if). 
Resolve: 

A,lhr 

A;<p,l vC h r 

Assume that A, <j>' ', C" h 73 corresponds to A;0, Z V C r-7- (i.e. C" P-corresponds to Z VC, 
0' = C(, . . . , C"„ and = Ci, . . . , C„ with C[ P-corresponding to Cj for i = 1 . . . n). We 
build in LK P (T) the following derivation 

A,0',C h^" 
pol 

A,4>',C h r 

It suffices to notice that A, <f>' , C' \- v ' L corresponds to A;<f>, C hr • 
Subsume: 

A-cj> h r 



■ A, I 1 - h. r 



A;cj>, I V C hr 

Assume that A, 0', C" \- T corresponds to A\<j>, I V C hr (i.e. C" P-corresponds to l\/C, 
4>' = C[, . . . , C'„ and (f> = Ci, . . . , C„ with Cj P-corresponding to Cj for i = 1 . . . n). 

Cut: If we want to simulate DPLL(T) with backjump, we need to encode the cut rule 
of LKqpl L . 
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A;<Mi,...,Z„ h r A;0,Chr 

c = it v . . . v C 

Assume that A, <f>' corresponds to A;4> hr (i.e. 0' = C[, . . . , C' n and <p = Ci, . . . ,C„ 
with Cj' P-corresponding to Cj for i = 1 . . . n). 

We build in LK P (T) the following derivation that uses a general cut: 

A, <j>', Ii, .... In ^ A, (J^V . . . V-Z„ x ) V v 

cut 

A,0' 

Clearly, A, <j>' , h, . . . , Z„ corresponds to A;<j>, h, . . . ,l„ \~r and A, <j>' , (h V~ . . . V~/ n ~ 
corresponds to A;4>, C \~r ■ 

□ 
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